Home | Advertising Info49 USERS CURRENTLY ONLINE   
PowerASP
   Site Search Contact Us Thursday, October 17, 2019  

Active Server Pages ASP ASP.NET .aspx .ascx Web HTML Developer Internet Microsoft Web Services Visual Studio .NET CJWSoft ASPProtect ASPBanner ASPClassifieds



Blog Entry: 3/25/2006 1:47:04 PM

Hello,

Thank you for the feedback.

I would like to point out the requirements of the application however as this is something I am aware of and do address.

http://support.cjwsoft.com/code/moreinfo165-1.htm

These requirments are directly linked to from the ASPProtect v7 web page, so its not like I dont try to tell people the deal regarding SQL server.

Basically I only have the resources to provide scipts and instructions for using SQL Enterprise Manager and that is all I officially support. I also personally think anyone using a SQL Server should be using SQL Enterprise Manager because later on down the road there are things you may want to do such as backups/etc etc

Take Care,

Chris Williams
www.CJWSoft.com

, I will give you permission to move it since you asked.,



You are right.
I have SQL server.
From August to today I have used a very simple login system and now I come back to you for better.
I can insert, edit, delete  users but it happens what I mentioned in my first message.
,

ASPProtect v7 comes with working example code of protecting an image from being downloaded and also protects the true file location of the image on your server..

This comes with the system as an example folder with some files in it.

(some of the initial purchaser's of the system might not have that directory.. if that is the case please ask)

Here is how it works...

Basically we protect the image in 2 ways.

  1. We use Javascript right click disabling code that works in both IE and Firefox.
  2. We stream the image via a special password protected ".asp" page and use an image tag to call it. This hides the true location of the file. You can therefore keep your images out of your web or keep them in a folder in your web that does not allow file browsing. Under this scenario even if someone looks at the img tag html source they can not tell where the file came from. Doing all of this allows you to offer certain images only to people that are logged in.

All in all this is should be very effective protection. Yes, there are still ways to get the images like doing screen captures, but this will ensure that people viewing images are logged in to your site. This will in most cases keep them from right clicking and saving the images. This will ensure that people can not tell other people the image's url location and it will ensure other sites can not leach your images and bandwidth.

For the image protection examples to work you may need to edit some values
in the stream_pic.asp file that are valid for your setup.

Look at the source. The values you can edit are commented.

Now, you also need to call a valid "image file name" from the call_pic.asp file which is an example of how you protect a page with javascript and call a streamed image using an image tag.

Lasty, here is a great article I found on image protection and some of the things you can do about it and some of things you cannot.

http://pubs.logicalexpressions.com/Pub0009/LPMArticle.asp?ID =41

, It runs on either... I used IIS

I dont remember much about installing it except it went pretty smoothly / no issues, Actually, as far the "aspprotectnet.dll" file goes it makes sense because of the following.

The "aspprotectlicense.dll" is something we do not provide the source code for. We also do not compile it in "debug" mode because you not want dll's running in "debug" mode in a production environment and we also do not want that dll in debug mode because of reverse engineering reasons.

Now, that being said that DLL is no different than any other 3rd party dll "so to speak" that you would use in a project. Many of which will not be in debug mode and you will also not have the source for.

"Microsoft.Data.Odbc.dll" being an example


Regardless, there must be a way to do what your trying to do. I am just not sure at the moment. It is nothing anyone has brought up before and I personally have never had any issues like that when I work on the application so I am just not sure.

It probably has something to do with the way you set up your project.,

In a way your questions are confusing to me, but here is some information regardless.



Using Active Sever pages you can not protect entire folders. It is simply not possible. ASPProtect is Active Server Pages scripts so it can only protect individual ".asp" files.


If you are concerned about customers downloading the access database..

best practive is to store it in different folder name than it came in
best practive is to give the database .mdb file itself a different name
best practive is to change the password on the access database
best practice is to store it in a directory that is not part of your web if possible.. many of the better hosting companies have it set up so you actually can do that

the more of these things you can do the better..

And if you are really worried about security you should use a SQL Server database which nobody can download from your website under any conditions because your data lives in the sql server and unless they get the username/password to it they can not access it.

cwilliams38306.6367708333,

When I add a user, I can not activat it.

What do you have the registration type set to in the settings ?
They wont be activated automatically unless you have "automatically" selected ?

It sends me back to log on and will now allow me to log in as admin???

I am not quite sure I understand ? Seems to me like that would be normal because you can always log in as the admin at any time. If you cant log in as the user you just signed up as that could be for a couple reasons relating to the registration type you have slected in the settings. There are 3 types all epxlained in the settings screen. Some require manual activation byt the admin, some involve a registration email.. etc etc

I can restart the APP and log in as Admin, but the user I added
is still not activated??

How and why are you restarting the applicaton ? Please explain what your doing there.

My system will also not allow me to set the Stay Loged in FLag.
It just ignores it....

As I told you in an email earlier cookies must be enabled for authentication to work. You mentioned now you can not log off ? I am not sure I know what you mean by that. I assume you know to close all browser windows when testing things like this and I assume you know you have specifically log off and confim it in order to remove the remember me cookie and have to log in again when you return to the site.

, Awesome -thanks - I'll give it a try  ,

Not sure because of the nature of the javascript method

 

for starters tighten up the html around the banner call

 

change

 

<tr>
<td width="460" height="60" align="center" valign="middle" class="imagead">
<!------- ASPBanner Ad code ------------->
<script language="JavaScript">
var code = '';
var now = new Date();
var nIndex = now.getTime();
document.write('<s' + 'cript src=" http://www.nababaseball.com/aspbannernet/aspbanner/injectban ner.aspx?BannerZone=1&nocache=' + nIndex + '">');
document.write('</' + 's' + 'cript>');
</script>
<script language="JavaScript">document.write(jscode);</script >

</td>

 

to

 

<tr>
<td width="460" height="60" align="center" valign="middle" class="imagead">
<script language="JavaScript">
var code = '';
var now = new Date();
var nIndex = now.getTime();
document.write('<s' + 'cript src=" http://www.nababaseball.com/aspbannernet/aspbanner/injectban ner.aspx?BannerZone=1&nocache=' + nIndex + '">');
document.write('</' + 's' + 'cript>');
</script>
<script language="JavaScript">document.write(jscode);</script >
</td>

 

 

If that doesn't help I would suggest using the ASP 3.0 version of ASPBanner. It can serve banners to a any type of page extension and it runs just as well as the .NET version. There is a new iframe method for calling banners that you can try instead of the javascript. The iframe method is explained in the ASPBanner Unlimited section of the forum.

cwilliams38150.6443634259,

I am trying to protect and ASP page written in Javascript.  The first part of the page goes:

<%@LANGUAGE="JAVASCRIPT"%>
<!--#include file="../Connections/connWINGAP.asp" -->

When I insert the aspprotect code it looks like this:

<%@LANGUAGE="JAVASCRIPT"%>
<!--#INCLUDE VIRTUAL="/GIS/WCGIS/GISProtect/check_user_inc.asp"-->
<!--#include file="../Connections/connWINGAP.asp" -->

and I get this error: 

Microsoft JScript compilation error '800a03f7'

Unterminated string constant

/GIS/WCGIS/GISProtect/check_user_inc.asp, line 2

I think I understand that your code is written in VBscript and that is why it is not working.  If this is the case, how can I switch to VB to execute your stuff then switch back?

Thanks,

Jess

,

I am in process of upgrading from v6 to v7.  I have made database changes, can connect to database and get in to Administration area just fine.  However when I go to create a new user I get the following error

 

ADODB.Recordset error '800a0cc1'

Item cannot be found in the collection corresponding to the requested name or ordinal.

/password_admin/save.asp, line 227

Thanks

 

,

Christopher

Thanks for a speedy reply.  This is what I have used most recently...

ListingsConnectionString = "DSN=longreach;UID=lradmin;PWD=skipper;"
DatabaseType = "SQL"

but that throws an error of:

 [Microsoft][ODBC Driver Manager] Data source name not found and no default driver specified

I have private messaged you my SQL server IP address.  I am a fast learner with ASP (I think!) but some things really catch me out!

,

I did the initial steps of downloading the sql scripts and running it in Query Analyser, tables created fine.

I can login for the first time. I exit from the browser and then I cannot login again. This happens for every user and admin.
I noticed that the values in the fields "Login_limit" and "Active" in the ASPP_Users table in the SQL changed to NULL and 0 when login and remained in those values after close the browser.

So iam just struck not able to log in. Pls advice.

 

,

Okay, I did that, now I get:

Microsoft VBScript runtime error '800a004c'

Path not found

/aspprotect/password_admin/upload_post.asp, line 292

,

If you need to know how to enable them on your test server.

http://support.cjwsoft.com/forum/forum_posts.asp?TID=5&P N=1

 

,

OK, well, that error is pretty self explanatory really. There isn't anything else it could mean.

What you showed me in that screen shot all looked correct, but still permissions to that file just can't be correct. The paths are correct. The path to the file looks correct. The ASPNET (ASP.NET) account looks correct.

I would try settings permissions directly on that XML file. Perhaps child permissions did not go through the way you intended. (the advanced tab must be used for that) If that doesn't work try giving ASPNET and Everyone full permissions on the file directly.

Possibly check the paths in the web.config file just for the heck of it.

Last case scenario, you can edit that XML file directly instead of using the screens in the application. Of course if that file does not have correct permission chances are other things like log files will give you issues as well.

That is all I can think of right now.

,

Hi,

That is not enough to go on. I need details in order to help.

,

You really should check out the documentation regarding the config file before you go any farther.

If the server supports ASP.NET you do not have to spend any money to have real fast loading thumbnails.


Also, licenses of ASPImage only cost 69.95 and regardless any quality host supporting ASP should have one of the 3 supported resizing components installed or else you should consider a better host like www.alentus.com Places like that have good hosting prices and give you access to 3000.00 worth of 3rd party asp components.

 

,
  • What kind of encryption do you use with version 7?
  • If I purchase version 7 and use it on my site with a new SQL database then migrate the old records from version 6 so I can by-pass the issue with my home-grown Base 64 encryption, do you forsee other issues with the upgrade?
,

Than you 

I'm happy after changing to XML parser for two of the ads. Later I'll change the other codes to XML, never to use iframe again!

,

one last thing... if you did an upgrade from a previous version and didnt do the whole database field thing right during the upgrade process as stated here you could have trouble.
http://support.cjwsoft.com/code/moreinfo174-1.htm

Meaning you should check your new database with the field structure of an unmodified new database and make sure all field names match up perfectly.. especially paying attention to the username and password fields

One last thing..
If you did an import via text file and didn't import all the fields ASPProtect needs you could possibly have problems as well.. though I don't think this relates to the timeout so it probably is not the case

, Ok, for starters what is the real error ? Please read this.
http://support.cjwsoft.com/code/moreinfo11-1.htm

2nd I always recommend using CDOSYS before any other email component. All servers have it running by default and ASPProtect supports some a html editor if you use that component. I would give that a try as well. It's the best emailing option.
,

sure, there are reasons AOL would block the email.. it might think it is spam or it might not like the fact that fact that a cdonts generated email has no MX records because it can not..

for more on MX records read my CDOSYS article
http://www.powerasp.com/content/new/sending_email_cdosys.asp


as far as the emails not being sent because notifications are off. I was not aware of that and will try to look into it.. Version 6 is no longer worked on but if I can find the time I will check that out

 

,

it is by design actually and something that can be improved
(I just never thought of it when I 1st designed the system and it is actually planned to be added in Version 8)

The trick would be to reset those session variables anytime someone edits and saves their information... not very hard at all

you would do it on the save code page for when a user edits themself.
you want to grab the info posted from the form and  reset each session variable at the same time everything is re-saved to the database

example

Session("Company_Name") = Request("Company_Name")



 

 

,

Hello,

I really need more infomation..

for starters

what is the server ? iis4,5, or 6 ?

what is the version of aspbanner.. aspbanner standard or aspbanner unlimited ?

what was the error message before you removed the "on error resume next"

was the sql database created using the sql creation scripts we provide as that is VERY important.

and lastly what are the the regional settings of the server ?
what is the date format ?

, Come on the threats are not necessary- i got the point the first time you said it.. i thought i made a friend thru this and felt comfortable to say something like that... i am not a big online chatter just do the web stuff as a hobby... i am a network / computer hardware guy (yet i work for a mortgage co. go figure...),

Thanks for your rapid responses, your support is excellent!

It may be best that I stick with html then. You mention that is stresses the Version 7 software, would the unlimited version perform any differently if I use multiple zones?

Also, if I do go with a single zone, would either program be able to make sure each banner is unique, or would there by duplicates for each page view?

Sorry to post so many questions in one day.

,

Humm, Did you change something in a bad way? Thats my guess.

I need more information on what is going on because by default it does not do that ?

The only possible way I can think of that could cause that is if you changed things around too much and the config_inc.asp file is getting run/included twice on that page your logging in to.

Also, when you sign in "where" ? What page ?

 

cwilliams38456.0906712963, Installing and running NET on a DOMAIN CONTROLLER is a BAD idea period. Besides the security risks you will have nothing but endless problems with that setup. Domain controllers ARE NOT and NEVER were intended to be run as any sort of application server. Your best bet is to run your asp and asp.net scripts from a member server or one set up just for web apps. Of course if your in the mood to mess around endlessly it is possible to make that work, but why would you want to when the prefered solution is a heck of a lot easier.
,

I would look on the pictures folder on the server and see what is there for pictures. Also, when you see a broken X on the site right click and see where it is trying to get the picture from and what the pictures name should be.

I would also be sure to clear out your temporary internet files in IE. clost and restart all browsers..

maybe show me the site ? so I can see this happening ?

cwilliams38348.9748726852,

If you bought ASPBanner Unlimited Version 7.3 Before August/01/2004 this file needs to be updated.

It fixes a bug where CODE type banners do not work correctly with a weight higher than 1.

Basically, blank banners will rotate and you will see nothing sometimes.

Copy this file into your ASPBanner folder over the existing file of the same name.

2004-08-03_045728_appinfo_inc.zip

cwilliams38209.5383680556,

Sounds cool.. post info when you get it sorted out

thx

hopefully someday I'll get the new version finished.. I just never seem to have time. Lately ASPProtect takes up all my time and now aspclassifieds seems to be in need of a new version more so than asp photo gallery

 

,

it might also be a good idea for you to try a simple text file writing example like this on your server and see if it hangs as well

http://www.devasp.com/samples/writetofile.asp

for troubleshooting sake

this is sounding more and more like the filesystem object is blocked or disabled on your server

,

I am not entirely sure how one configures the system to assign a user to a specific group.  For example, let say I have created two groups A and B, and I have pages protected by the code generated in the admin area for groups A and B.  I know I can assign access to these groups in the admin area.  However,  it is not clear to me how I do it automatically through the registration process. 

,

Hi,

Could you please advise what may be causing this error:

Microsoft OLE DB Provider for ODBC Drivers error '80004005'

[Microsoft][ODBC Microsoft Access Driver]General error Unable to open registry key 'Temporary (volatile) Jet DSN for process 0x57a4 Thread 0x5474 DBC 0xf03a704 Jet'.

/ASPProtect/check_user_inc.asp, line 292

 

Funny thing is that if I refesh the page with the above error it gives me the following eror:

/ASPProtect/check_user_inc.asp, line 292

and after few times of refreshing the page it shows me the page I am after.

Is this my promlem or ISP's.

Thank you

,

If you are developing using Windows XP Pro and running the NTFS file system setting proper permissions on a folder in your website requires that you 1st disable simple file sharing.

To do so open up "my computer". At the top open up "tools/folder options"

Then the "view" tab.

Then at the bottom uncheck "use simple file sharing"


After that that is done... using "my computer" browse to the folder in your web that you need to set permissions on.

Right click on that folder and then choose the "security" tab.
(If simple file sharing is on that tab wont be there)

Give the "Internet Guest Account" Modify Permissions
This will check all the boxes under modify as well.

You can also give permissions to the everyone account and accomplish the same thing.



BTW:
If you are using ASP.NET you need to give permissions to an account called ASPNET. It wont show up in the user list. You'll need to click "add" and then type in "ASPNET"




cwilliams38203.582337963, That is actually normal and supposed to be like that.
You have the current version.

ASPVendor is a VERY simple application meant to work with PayPal shopping cart that runs on their server. It is based off the ASPClassifieds core code. There is only one version and highly doubt there will ever be another., Not sure what you mean about the path to the IIS files being wierd...what else should it be?  The wf directory is the root of the aspprotect stuff for this project. 

I assume the permissions need to be read, write at least.  I was looking at the permissions dialog from a file explorer and I see a web sharing tab and a security tab.  I look at the security tab but I am not really sure which type of user I am looking for to add and give permissions to so that I can get it right.  Maybe that is not the right place to set the permissions....

Sorry to be "windows challenged" but I am not super familliar with all the different places to set various permissions for OS vs. IIS.  I looked in the "Internet Services Manager" and browsed to the logfiles directory and looked at its permissions...is that the place to set things up?  I see a "directory" and "Directory security" tabs...which is the important one?  I made sure "write" was checked and went to the directory security tab and enabled anonomous access....still no logs are showing up. Restarted server a bunch of times to make sure it took the permission settings.  I logged in and out correctly and incorrectly to see if a log would be generated but no luck.

The physical path to the logfiles directory is set correctly in the setup tab in aspprotect... sorry to still be baffled.

How do I know if the filesystem object is disabled on the server??  I can copy and paste things in there...

Thanks!!


, I have multiple zone banners displayed on a single page using the AspHTTP Component Method.

However, in IE 6.x and NS 7.x each banner has some text displayed before it similar to:

HTTP/1.1 200 OK Server: Microsoft-IIS/5.0 Date: Fri, 17 Sep 2004 07:15:12 GMT MicrosoftOfficeWebServer: 5.0_Pub Connection: Keep-Alive Content-Length: 229 Content-Type: text/html Set-Cookie: ASPSESSIONIDAASSDQBA=HAICCGCANEBEPANCDHLHJJGC; path=/ Cache-control: private


This text does not appear when using Netscape 4.x cwilliams38325.741099537,


Timecard Entry: 3/25/2006 1:47:04 PM

travel to jcc, Went to AMF Printing, got the inserts, envelopes and whatever else they had for me., Holiday, was hurt ... tried to work and could not stand the pain.. made doctors appointment, Talking w/ Don Klug and Ivan Sein re: PRI order., *TaskForce: Meet w/ Robby - ColligoNet Features Discussion, Testing fredericremington.org picture uploads again because Nicky is having problems. Again uploads are working fine., general site design research for vermont internet and Burllington P&R sites, At laundrament working on these darn errors on the softmls2 system and property type configuration issues., Trained Darryl and JoAnn on how to update the expiring accts. report., went to syracuse to check equipment for frame t1, removed one acer server to rebuild as a radius server., evening meeting, VT journal - showing Andrea, conference call with Bell to resolve timing issues on Burlington ATM circuit, physical connection moved to another card, Many bad passwords and a couple expireds (two of them from me, those signups that I forgot to change the billing date on.), worked on Canadian/US map for GiSCO home page, Chautauqua database, E-Mail, lunch, tanned, added new real estate listing to realtor section of Auction Guys web site (auctionguys.com, billable), General Phone calls., n line and rad log, phones till 1 am steady, (just 2 calls, both aol 5.0 problems that will not fix)open incidents, email and dial up issues,tech email, helped Steve w/map on partners site, updating numbers.txt file for Jim, left early to pick up sister at Samaritan, work on the above, Bell At'l - RETAS, Manhattan, went to Clayton to assist Seth with TI Router....did memory upgrade but Installation did not occur due to missing power supply unit., Warren DB Conv., evening meeting, Travelling back to Watertown,

   Active Server Pages Rule The World
Contact Us  
All artwork, design & content contained in this site are Copyright 1998 - 2019 PowerASP.com and Christopher J. Williams
Banner ads ,other site logos, etc are copyright of their respective companies.
STATS Unless otherwise noted - All Rights Reserved.

Active Server Pages asp search engine active server page asp application components tutorial CJWSoft ASPProtect ASPBanner ASPClassifieds www.aspclassifieds.com, www.powerasp.com,www.cjwsoft.com,www.aspphotogallery.com,www.codewanker.com,www.aspprotect.com,www.aspbanner.com